neutron is vulnerable to denial of service. An authenticated user may send a malicious extra_dhcp_opts value to add arbitrary configuration to the dnsmasq process in order to crash the service, change parameters for other tenants sharing the same interface, or otherwise alter that daemons behavior.
www.openwall.com/lists/oss-security/2021/08/31/2
bugs.launchpad.net/neutron/+bug/1939733
launchpad.net/bugs/1939733
lists.debian.org/debian-lts-announce/2021/10/msg00005.html
lists.debian.org/debian-lts-announce/2022/05/msg00038.html
security.openstack.org/ossa/OSSA-2021-005.html
www.debian.org/security/2021/dsa-4983